Amazon-owned Twitch.tv warns of possible hack; resets passwords

“For your protection, we have expired passwords and stream keys and have disconnected accounts from Twitter and YouTube,” reads the statement. “As a result, you will be prompted to create a new password the next time you attempt to log into your Twitch account. We also recommend that you change your password at any website where you use the same or a similar password.” The exact nature of the breach isn’t known, but Twitch said it would contact affected users directly with additional details.

According to a quick blog post on Twitch’s website, there “may have been unauthorized access to some Twitch user account information.” Until the post, Twitch was calling the issue an “internal tech issue”. Additionally, people are being advised to change their passwords on any other sites that shared the same login credentials as their Twitch account in order to prevent any further account breaches. While we store passwords in a cryptographically protected form, we believe it’s possible that your password could have been captured in clear text by malicious code when you logged into our site on March 3rd.”

Included in the compromised data is IP at last login, date of birth, and limited card information (including expiration date, card type, and truncated number). According to emails being sent out to possibly affected users, hackers may have gained access to info “including possibly your Twitch username and associated email address, your password (which was cryptographically protected), the last IP address you logged in from, and any of the following if you provided them to us: first and last name, phone number, address, and date of birth.” Last week, Twitch went down for several hours, but the company has told us that particular outage was not the result of the attack it is talking about today.